CVE-2011-2022

Severity :

Medium

Published :

2011-05-09

Modified :

2014-01-13

Base Score :

6.9

Details :

The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 does not validate a certain start parameter, which allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_UNBIND agp_ioctl ioctl call, a different vulnerability than CVE-2011-1745.